WO2011140843A1 - 一种报文转发的方法、装置及系统 - Google Patents

一种报文转发的方法、装置及系统 Download PDF

Info

Publication number
WO2011140843A1
WO2011140843A1 PCT/CN2011/070711 CN2011070711W WO2011140843A1 WO 2011140843 A1 WO2011140843 A1 WO 2011140843A1 CN 2011070711 W CN2011070711 W CN 2011070711W WO 2011140843 A1 WO2011140843 A1 WO 2011140843A1
Authority
WO
WIPO (PCT)
Prior art keywords
packet
flow label
network address
ipv6
ipv6 packet
Prior art date
Application number
PCT/CN2011/070711
Other languages
English (en)
French (fr)
Chinese (zh)
Inventor
查敏
邹婷
周倩
黄敬
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to EP11780065.6A priority Critical patent/EP2458799B1/de
Priority to JP2012530121A priority patent/JP5499391B2/ja
Priority to KR1020127006300A priority patent/KR101455219B1/ko
Publication of WO2011140843A1 publication Critical patent/WO2011140843A1/zh
Priority to US13/674,924 priority patent/US9100352B2/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • H04L45/741Routing in networks with a plurality of addressing schemes, e.g. with both IPv4 and IPv6
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/66Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/33Flow control; Congestion control using forward notification
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2514Translation of Internet protocol [IP] addresses between local and global IP addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2557Translation policies or rules
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2592Translation of Internet protocol [IP] addresses using tunnelling or encapsulation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • H04L69/167Adaptation for transition between two IP versions, e.g. between IPv4 and IPv6
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/60Types of network addresses
    • H04L2101/686Types of network addresses using dual-stack hosts, e.g. in Internet protocol version 4 [IPv4]/Internet protocol version 6 [IPv6] networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/52Multiprotocol routers

Definitions

  • IPv6 Internet Protocol Version 6, Version 6 Internet Protocol
  • IPv6 Internet Protocol Version 6, Version 6 Internet Protocol
  • IPv6 evolution there are mainly dual stack + NAT (Network Address Translation), 6RD (IPv6 Rapid Deployment), DS-LITE (Dual-Stack Lite, double) according to its network status and evolution.
  • Stack simplification scheme These evolution schemes, and the DS-LITE scheme is mainly for the middle and late stage of IPv6 evolution, that is, the IPv4 island traverses the IPv6 network to access the IPv4 Internet.
  • the DS-LITE scheme initiates tunneling (IPv4 over IPv6) to AFTR (Address Family Transition Router) on the CPE (Customer Premise Equipment), and terminates the AFTR in the AFTR. After the tunnel is tunneled, the IPv4 to IPv4 NAT is forwarded to the IPv4 network.
  • the current network generally follows the networking mode.
  • the terminal or the client device uses PPP0E (point to point protocol over Ethernet) to access the BNG (Broadband Network Gateway).
  • PPP0E point to point protocol over Ethernet
  • Authentication and accounting are performed using the Radius (Remote Authentication Dial In User Service) protocol and the AAA server (Authentication Authorization Accounting Server).
  • Radius Remote Authentication Dial In User Service
  • AAA server Authentication Authorization Accounting Server
  • the inventors have found that at least the following problems exist in the prior art: in the prior art IPv6 evolution, when the gateway and the local address switching router AFTR have multiple links corresponding to the same tunnel for network address translation, After the AFTR receives the packets sent by the gateway, it needs to distinguish the user equipment according to the IP address of the user equipment. If the IP address of the user equipment overlaps or is the same, the local address switching router cannot distinguish different end users. The end user of the text cannot receive feedback. Summary of the invention
  • the embodiment of the present invention provides a method, a device, and a system for forwarding a message.
  • multiple links between the gateway and the AFTR correspond to the same tunnel for network address translation, if the IP addresses of the terminal users overlap or are the same, Implementation can distinguish between different end users.
  • the embodiment of the present invention provides a packet forwarding method, where the method includes: receiving an IPv6 packet sent by a gateway, and acquiring a flow label of the IPv6 packet, where the flow label of the IPv6 packet is The link identifier of the client device is in one-to-one correspondence; decapsulating the IPv6 packet; performing network address translation on the decapsulated packet according to the flow label; and forwarding the decapsulated packet according to the converted network address Message.
  • the embodiment of the present invention provides a packet forwarding method, where the method includes: receiving an IPv4 packet sent by a user equipment, and acquiring a link identifier of the IPv4 packet;
  • the link identifier, the flow label of the IPv6 packet is obtained by the one-to-one correspondence between the flow label of the IPv6 packet and the link identifier of the user equipment, and the IPv4 packet is sent according to the flow label of the IPv6 packet.
  • the tunnel is encapsulated, and the encapsulated packets are sent to the local address switching router.
  • the embodiment of the present invention provides a device for forwarding a packet
  • the device includes: a first packet receiving unit, configured to receive an IPv6 packet sent by a gateway, and obtain a flow label of the IPv6 packet,
  • the flow label of the IPv6 packet has a one-to-one correspondence with the link identifier of the user equipment.
  • the first decapsulation unit is configured to decapsulate the IPv6 packet
  • the first address translation unit is configured to use the flow label according to the flow label.
  • the first packet sending unit is configured to forward the decapsulated packet according to the converted network address.
  • an embodiment of the present invention provides a device for forwarding a packet, where the device includes: a second packet receiving unit, configured to receive an IPv4 packet sent by a user equipment, and obtain a chain of the IPv4 packet.
  • the second information acquiring unit is configured to obtain the flow of the IPv6 packet by using a one-to-one correspondence between the flow label of the IPv6 packet and the link identifier of the user equipment according to the link identifier of the IPv4 packet.
  • the second encapsulating unit is configured to tunnel the IPv4 packet according to the flow label of the IPv6 packet, and the second packet sending unit is configured to send the encapsulated packet to the local address switching router.
  • the embodiment of the present invention provides a system for packet forwarding, where the system includes: a gateway, configured to receive an IPv4 packet sent by a user equipment, and obtain a link identifier of the IPv4 packet; The link identifier of the IPv4 packet, the flow label of the IPv6 packet is obtained by the one-to-one correspondence between the flow label of the IPv6 packet and the link identifier of the user equipment, and the flow label of the IPv6 packet is obtained according to the flow label of the IPv6 packet.
  • IPv4 packets are encapsulated in tunnels. The packet encapsulated by the tunnel is sent to the local address switching router.
  • the local address switching router is configured to receive the IPv6 packet sent by the gateway, and obtain the flow label of the IPv6 packet, where the flow label of the IPv6 packet is The link identifier of the client device is in one-to-one correspondence; decapsulating the IPv6 packet; performing network address translation on the decapsulated packet according to the flow label; and forwarding the decapsulated packet according to the converted network address Message.
  • the IPv6 packet sent by the receiving gateway is used, and the flow label of the IPv6 packet is obtained, wherein the flow label of the IPv6 packet has a one-to-one correspondence with the link identifier of the user equipment; Decapsulating the IPv6 packet; performing network address translation on the decapsulated packet according to the flow label; and forwarding the decapsulated packet according to the converted network address, so when the gateway and the AFTR When there are multiple links corresponding to the same tunnel for network address translation, if the IP addresses of the terminal users overlap or are the same, it is possible to distinguish different terminal users, so that the end users who send packets can receive feedback and improve user satisfaction. .
  • FIG. 1 is a flowchart of a method for forwarding a packet according to an embodiment of the present invention
  • FIG. 2 is a flowchart of another method for packet forwarding according to an embodiment of the present invention.
  • FIG. 3 is a schematic diagram of a network layout of a dual-stack simplified solution DS-LITE solution according to an embodiment of the present invention
  • FIG. 4 is a schematic diagram of a network layout applied to another dual-stack simplified solution DS-LITE solution according to an embodiment of the present invention
  • 5 is a schematic diagram of a forward NAT table according to an embodiment of the present invention
  • FIG. 6 is a schematic diagram of a reverse NAT table according to an embodiment of the present invention.
  • FIG. 7 is a schematic structural diagram of an apparatus for forwarding a message according to an embodiment of the present invention.
  • FIG. 8 is a schematic structural diagram of another apparatus for packet forwarding according to an embodiment of the present invention.
  • FIG. 9 is a schematic diagram of a system for packet forwarding according to an embodiment of the present invention.
  • BEST MODE FOR CARRYING OUT THE INVENTION The specific implementation process of the present invention will be exemplified below by way of examples. It will be apparent that the embodiments described below are a part of the embodiments of the invention, rather than all of the embodiments. Based on embodiments in the present invention, common in the art All other embodiments obtained by a skilled person without creative efforts are within the scope of the present invention.
  • a flowchart of a method for forwarding a packet includes:
  • IPv6 packet sent by the gateway, and obtain a flow label of the IPv6 packet, where the flow label of the IPv6 packet is in one-to-one correspondence with the link identifier of the user equipment.
  • the flow label of the foregoing IPv6 packet may include: a virtual local area network (VLAN) identifier, or an Ethernet-based point-to-point protocol PPPOE session identifier;
  • the link identifier of the user equipment may include the following One or more combinations of information: the access device slot number, the port number, and the tunnel identifier between the client device and the gateway.
  • the device After receiving the IPv6 packet sent by the gateway, the device can obtain the flow label of the IPv6 packet from the flow label field in the IPv6 packet header.
  • the value of the foregoing link identifier may be the same as the value of the foregoing flow label or calculated according to the flow label information.
  • the embodiment of the present invention is not limited thereto.
  • performing the network address translation on the decapsulated packet according to the foregoing flow label may include: performing network on the decapsulated packet according to the correspondence between the internal network address information and the external network address information. Address conversion; wherein, the foregoing internal network address information may at least include: one or more combinations of a flow label, a tunnel identifier, and an internal network port number of the IPv6 packet; the foregoing external network address information may include: an external network address and an external network The port number.
  • the decapsulated packet may be an IPv4 packet.
  • the foregoing method may further include: receiving a packet sent by the external network, acquiring external network address information of the packet, and performing network address translation on the packet according to the correspondence between the internal network address information and the external network address information.
  • the tunnel packet is encapsulated by the tunnel; the encapsulated packet is sent to the gateway according to the converted network address.
  • FIG. 2 is a flowchart of another method for packet forwarding according to an embodiment of the present invention, where the method includes:
  • the IPv4 packet is encapsulated by the flow label of the IPv6 packet, and the encapsulated packet is sent to an address family transition router (AFTR).
  • the foregoing method may further include: receiving an IPv6 packet sent by the local address switching router, and acquiring a flow label of the IPv6 packet; performing tunnel decapsulation on the IPv6 packet to obtain an IPv4 packet; And obtaining the link identifier of the user equipment by using a one-to-one correspondence between the flow label of the IPv6 packet and the link identifier of the user equipment, and forwarding the IPv4 packet according to the link identifier of the user equipment.
  • the gateway and the AFTR correspond to the same tunnel for network address translation
  • the IP addresses of the terminal users are overlapped or the same
  • the different terminal users can be distinguished and sent.
  • the end user of the message can receive feedback and improve user satisfaction.
  • FIG. 3 it is a schematic diagram of a network layout diagram applied to a dual-stack simplified solution DS-LITE solution according to an embodiment of the present invention.
  • the user equipment is a general reference, and the client equipment may include a host or a terminal and a CPE.
  • the hosts HostA, B, C, D, and each CPE may be user equipments, and the access equipments are digital.
  • the user equipment accesses the multiplexer DSLAM device.
  • the gateway uses the broadband network gateway BNG as an example to describe the following application scenarios.
  • the connections between the devices in Figure 3 are as follows:
  • the four hosts are HostA, HostB, HostC, and HostD.
  • Each host is connected to four CPEs.
  • Each CPE uses PPP0E to access the digital subscriber line.
  • the multiplexer DSLAM is connected to the broadband network gateway BNG; the BNG adopts the remote user dialing authentication system Radius protocol and the authentication, authorization and accounting server AAA server for authentication and charging; wherein, the client device is in the IPv4 private network, BNG and AFTR On an IPv6 network, the network on the right of the AFTR is the IPv4 public network, and the IP addresses of HostA and HostD may overlap or be the same.
  • Host D sends IPv4 packets to the BNG through the CPE and DSLAM.
  • the BNG receives the IPv4 packet sent by the HostD, and obtains the link identifier of the IPv4 packet.
  • the link identifier obtained here may be the session ID of the session identifier.
  • Host D uses PPP0E link dialing, and ijBNG is the PPP0E link.
  • the session ID of the PPP0E link of the unique client device is assigned, and the session identifier is 16 bits.
  • the BNG corresponds to the session ID of the IPv6 packet and the session ID of the client device according to the session ID of the IPv4 packet.
  • the BNG may not save the corresponding identifier. Relationships, which need to be established at this time, are saved after the establishment is successful, so that the next BNG receives the uplink IPv4 packet and then performs subsequent operations according to the saved correspondence.
  • the establishment of the correspondence can be manually set or automatically saved when the system starts.
  • the embodiment of the present invention does not limit the foregoing, and obtains the flow label Flow Label of the IPv6 packet.
  • the BNG tunnels the IPv4 packet according to the flow label Flow Label of the IPv6 packet, that is, adds an IPv6 packet header before the IPv4 packet.
  • the IPv6 packet header includes the IPv6 Flow Label field, and the BNG fills the obtained Flow Label value of the IPv6 packet into the Flow Label field corresponding to the IPv6 packet header, and sends the encapsulated packet to the AFTR. .
  • the AFTR receives the IPv6 packet sent by the BNG.
  • the forward NAT table in FIG. 5 and the reverse NAT table in FIG. 6 can be simultaneously generated. The content of the table will be performed below.
  • the flow label value of the flow label of the IPv6 packet is in one-to-one correspondence with the link identifier of the user equipment.
  • the AFTR decapsulates the IPv6 packet (that is, removes the IPv6 packet header and obtains the IPv4 packet).
  • the forward NAT table in FIG. 5 is used (according to the saved internal network address information (ie, the key of the forward NAT table in FIG.
  • the decapsulated IPv4 packet is forwarded to the corresponding IPv4 public network according to the converted network address (that is, the internal network address information of the IPv4 packet is converted into the external network address information).
  • the BNG has different access forms, such as PPP0E and VLAN.
  • the BNG allocates the link identifier of the link where the client device is located according to the access link. Assuming that the value of the link identifier is the same as the value of the flow label, the link label can be assigned a unique Flow Label value on the BNG according to a certain rule; for example, for the PPP0E link access, the value of the Flow Label can be For the PPPOE SESSION ID, the value of the Flow Label can be the VLAN ID for the VLAN access.
  • the BNG can also assign the value of the Flow Label to the device, ensure the uniqueness of the Flow Label, and facilitate the forwarding of the packet.
  • the link identifier includes one or more of the following information: an access device slot number, a port number, and a tunnel identifier between the client device and the gateway.
  • the AFTR receives the IPv6 packet sent by the BNG, obtains the flow label Flow Label value in the IPv6 packet, and according to the flow label Flow Label and the tunnel identifier ID (the tunnel identifier is the gateway and the AFTR) Inter-network port number), internal network port number (IPv6 internal network port number), and protocol type (IPv6 private network protocol type). Fill the above values into the internal network address information (that is, the key of the forward NAT table).
  • the external network address information ie, the content of the forward NAT table
  • the external network address information includes an external network IP address and an external network port number.
  • the generation of the table in FIG. 6 according to the external network port number generated in the table in FIG. 5, the external network IP address, and the protocol type of the IPv6 public network, the values of the items are respectively filled in the options corresponding to the Key of the reverse NAT table.
  • the correspondence between the key and the content of the reverse NAT table obtains the content of the reverse NAT table, that is, the internal network address information and the IP address of the internal network are obtained according to the external network address information and the protocol type of the external network.
  • the AFTR receives the IPv4 packet sent by the external network (that is, the IPv4 public network), obtains the external network address information contained in the IPv4 packet, and the protocol type of the IPv4 public network, and then the AFTR according to the reverse NAT table key and the reverse NAT table.
  • the external network that is, the IPv4 public network
  • the packet header where the IPv6 packet header contains the flow label of the IPv6 packet, and the stream label is the value of the flow label, and then obtains the packet encapsulated by the tunnel, that is, the IPV6 packet, and sends the packet to the packet.
  • BNG receives the IPV6 packet sent by the AFTR, obtains the flow label Flow Label value of the IPv6 packet, and decapsulates the IPv6 packet to obtain an IPv4 packet.
  • IPv6 packet header is removed and the IPv4 packet is obtained. And then, according to the one-to-one correspondence between the flow label and the link identifier of the user equipment, obtain the session ID of the user equipment, and then forward the IPv4 packet to the corresponding HostD according to the session ID.
  • the IP addresses of the HostA and the HostD may overlap or be the same, so that different terminal users can be distinguished and sent.
  • the end user HostD of the message can receive feedback and improve user satisfaction.
  • FIG. 4 it is a schematic diagram of a network layout applied to another DS-LITE solution of a dual-stack simplified solution according to an embodiment of the present invention.
  • the user terminal UE E dials a link through an eNode B (Evolved Node B, a mobile base station of a 3G network), and a PGW (Public Data Network gateway) is used for the chain.
  • eNode B Evolved Node B, a mobile base station of a 3G network
  • PGW Public Data Network gateway
  • a unique link identifier (TED) is assigned to the router.
  • the PGW sets the correspondence between the TEID and the flow label Flow Label of the tunnel in the DS-LITE to correspond to the Flow Label—the link identifier of the user equipment.
  • the link layer identifier also includes the identifier of the tunnel from the client device to the GATEWAY; the AFTR converts the Flow Label as part of the NAT table, and also applies to the case where the IP addresses of the user terminals may overlap or be the same.
  • FIG. 4 The flow of the IPv4 packet forwarding in FIG. 4 is basically the same as that in the embodiment of FIG. 3. Therefore, the embodiment of the present invention will be described herein simply by referring to FIG. 4:
  • the PGW receives the uplink IPv4 packet sent by the UE E, obtains the link identifier information TEID in the uplink IPv4 packet, and then tunnels the uplink IPv4 packet according to the corresponding relationship between the TEID and the Flow Label of the IPv6 packet.
  • Encapsulation that is, adding an IPv6 packet header before the IPv4 packet, the IPv6 packet header includes the IPv6 Flow Label field, BNG After the value of the Flow Label of the obtained IPv6 packet is filled in the Flow Label field corresponding to the IPv6 packet header, the generated IPv6 packet is sent to the AFTR.
  • the AFTR receives the IPv6 packet sent by the PGW, and obtains the flow label information Flow Label of the IPv6 packet in the IPv6 packet according to the link identifier information TEID; the AFTR decapsulates the IPv6 packet to obtain an IPv4 packet, according to FIG. 5
  • the mapping between the forward NAT table of the middle table that is, the correspondence between the internal network address information and the external network information), performing network address translation of the IPv4 packet, and forwarding the IPv4 packet to the network address after the transfer Corresponding IPv4 public network.
  • the flow in the downstream direction can refer to the process in the downlink direction described in the embodiment of Fig. 3, and will not be described in detail here.
  • the IP address of the terminal user is overlapped or the same, and the flow label information of the IPv6 packet can be distinguished according to the flow label information of the IPv6 packet.
  • End user Use the link ID to map the Flow Label so that the NAT is independent of the user source IP. It can support the end user IP address overlapping or the same situation.
  • using the Flow Label 20 bit and the tunnel ID 12 bits as indexes you can make a 32-bit index. Key) , so do not change the original NAT implementation (mainly size and index length), more compatible with the original NAT implementation.
  • FIG. 7 is a schematic structural diagram of a device for forwarding a message according to an embodiment of the present invention, where the device includes:
  • the first packet receiving unit 71 is configured to receive an IPv6 packet sent by the gateway, and obtain a flow label of the IPv6 packet, where the flow label of the IPv6 packet has a one-to-one correspondence with the link identifier of the user equipment;
  • the first decapsulating unit 72 is configured to decapsulate the IPv6 packet.
  • the first address conversion unit 73 is configured to perform network address translation on the decapsulated packet according to the flow label, and the first packet sending unit 75 is configured to forward the decapsulated report according to the converted network address. Text.
  • the first address conversion unit 73 is configured to perform network address translation on the decapsulated packet according to the correspondence between the internal network address information and the external network address information, where the internal network address information is at least
  • the method includes: one or more combinations of a flow label, a tunnel identifier, and an internal network port number of the IPv6 packet; the foregoing external network address information includes: an external network address and an external network port number.
  • the foregoing apparatus may further include: the first packet receiving unit 71 is further configured to receive a packet sent by an external network, and obtain external network address information of the packet; and the first address converting unit 73 is further used. Performing network address translation on the packet according to the correspondence between the internal network address information and the external network address information; The encapsulating unit 74 is configured to perform tunnel encapsulation on the packet. The first packet sending unit 75 is further configured to send the encapsulated packet to the gateway according to the converted network address.
  • the flow label of the foregoing IPv6 packet may include: a virtual local area network (VLAN) VLAN identifier, or an Ethernet-based point-to-point protocol PPP0E session identifier.
  • the link identifier of the user equipment includes one or more of the following information. Combination: The slot number of the access device, the port number, and the tunnel identifier between the client device and the gateway.
  • FIG. 8 is a schematic structural diagram of another apparatus for forwarding a message according to an embodiment of the present invention, where the apparatus includes:
  • the second packet receiving unit 81 is configured to receive an IPv4 packet sent by the user equipment, and obtain a link identifier of the IPv4 packet.
  • the second information acquiring unit 83 is configured to obtain, according to the link identifier of the IPv4 packet, a flow label of the IPv6 packet by using a one-to-one correspondence between the flow label of the IPv6 packet and the link identifier of the user equipment.
  • the second encapsulating unit 84 is configured to perform tunnel encapsulation on the IPv4 packet according to the flow label of the IPv6 packet
  • the second packet sending unit 85 is configured to send the encapsulated packet to the local address switching router.
  • the foregoing apparatus may further include: the second packet receiving unit 81, further configured to receive the IPv6 packet sent by the local address switching router, and obtain the flow label of the IPv6 packet; the second decapsulation unit 82, And the second information obtaining unit 83 is further configured to: use the flow label of the IPv6 packet and the link identifier of the user equipment according to the flow label according to the flow label.
  • the second packet sending unit 85 is further configured to forward the IPv4 packet according to the link identifier of the user equipment.
  • FIG. 9 a schematic diagram of a system for forwarding a message according to an embodiment of the present invention, where the system includes:
  • the gateway 91 is configured to receive the IPv4 packet sent by the user equipment, and obtain the link identifier of the IPv4 packet. According to the link identifier of the IPv4 packet, the flow label of the IPv6 packet and the chain of the user equipment The one-to-one correspondence of the path identifiers, the flow label of the IPv6 packet is obtained; the IPv4 packet is encapsulated according to the flow label of the IPv6 packet; and the encapsulated packet is sent to the local address switching router AFTR;
  • the local address switching router AFTR92 is configured to receive the IPv6 packet sent by the gateway, and obtain the flow label of the IPv6 packet, where the flow label of the IPv6 packet has a one-to-one correspondence with the link identifier of the user equipment; Decapsulating the IPv6 packet; performing network address translation on the decapsulated packet according to the flow label; and forwarding the decapsulated packet according to the converted network address.
  • the same tunnel corresponds to the same tunnel.
  • the implementation can distinguish different end users, so that the end users who send the packets can receive feedback and improve user satisfaction.
  • Use the link ID to map the Flow Label so that the NAT is independent of the user source IP. It can support the end user IP address overlapping or the same situation.
  • using the Flow Label 20 bit and the tunnel ID 12 bits as indexes you can make a 32-bit index. Key) , so do not change the original NAT implementation (mainly size and index length), more compatible with the original NAT implementation.
  • the present invention can be implemented by means of software plus a necessary hardware platform, and of course, all can be implemented by hardware, but in many cases, the former is better.
  • Implementation Based on such understanding, all or part of the technical solution of the present invention contributing to the background art may be embodied in the form of a software product that can be used to perform the above-described method flow.
  • the computer software product can be stored in a storage medium, such as a ROM/RAM, a magnetic disk, an optical disk, etc., including instructions for causing a computer device (which can be a personal computer, a server, or a network device, etc.) to perform various embodiments of the present invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)
PCT/CN2011/070711 2010-05-11 2011-01-27 一种报文转发的方法、装置及系统 WO2011140843A1 (zh)

Priority Applications (4)

Application Number Priority Date Filing Date Title
EP11780065.6A EP2458799B1 (de) 2010-05-11 2011-01-27 Verfahren, Vorrichtung und System zum weiterleiten von Nachrichten
JP2012530121A JP5499391B2 (ja) 2010-05-11 2011-01-27 メッセージを転送するための方法、装置およびシステム
KR1020127006300A KR101455219B1 (ko) 2010-05-11 2011-01-27 패킷을 포워딩하기 위한 방법, 장치 및 시스템
US13/674,924 US9100352B2 (en) 2010-05-11 2012-11-12 Method, device, and system for forwarding packet

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010171634.5 2010-05-11
CN201010171634.5A CN102244688B (zh) 2010-05-11 2010-05-11 一种报文转发的方法、装置及系统

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US13/674,924 Continuation US9100352B2 (en) 2010-05-11 2012-11-12 Method, device, and system for forwarding packet

Publications (1)

Publication Number Publication Date
WO2011140843A1 true WO2011140843A1 (zh) 2011-11-17

Family

ID=44913891

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/070711 WO2011140843A1 (zh) 2010-05-11 2011-01-27 一种报文转发的方法、装置及系统

Country Status (6)

Country Link
US (1) US9100352B2 (de)
EP (1) EP2458799B1 (de)
JP (1) JP5499391B2 (de)
KR (1) KR101455219B1 (de)
CN (1) CN102244688B (de)
WO (1) WO2011140843A1 (de)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2012130263A1 (de) * 2011-04-01 2012-10-04 Siemens Enterprise Communications Gmbh & Co. Kg Verfahren zur adressierung von nachrichten in einem computernetzwerk
US8943000B2 (en) * 2012-01-20 2015-01-27 Cisco Technology, Inc. Connectivity system for multi-tenant access networks
CN102761440B (zh) 2012-06-28 2015-01-28 华为终端有限公司 管理IPv4终端的通道的建立方法及网络网关
US9553801B2 (en) * 2012-09-25 2017-01-24 Google Inc. Network device
EP2924940B1 (de) * 2012-12-27 2019-12-04 Huawei Technologies Co., Ltd. Datenübertragungsverfahren auf benutzerebene, mobilitätsverwaltungsnetzwerkelement und evolved node-b
US9124525B2 (en) * 2013-06-24 2015-09-01 Cisco Technology, Inc. User-equipment-initiated framed routes on customer-premises equipment for wireless wide area networks
CN104283787B (zh) * 2013-07-12 2017-07-28 中国电信股份有限公司 一种路由方法和系统
CN103685032B (zh) * 2013-12-09 2017-06-23 福建星网锐捷网络有限公司 报文转发方法及网络地址转换服务器
CN104954336B (zh) * 2014-03-28 2019-05-17 中兴通讯股份有限公司 IPv6网络参数处理方法、装置、系统及AAA服务器
CN105282102B (zh) * 2014-06-30 2019-03-15 中国电信股份有限公司 数据流处理方法和系统以及IPv6数据处理设备
US9756013B2 (en) * 2014-07-10 2017-09-05 Cisco Technology, Inc. Distributed mapping of address and port (MAP) between a provider edge device and customer premise equipment devices
CN105681230A (zh) * 2014-11-21 2016-06-15 中兴通讯股份有限公司 一种业务链中的数据处理方法及设备
US9264370B1 (en) 2015-02-10 2016-02-16 Centripetal Networks, Inc. Correlating packets in communications networks
US9866576B2 (en) 2015-04-17 2018-01-09 Centripetal Networks, Inc. Rule-based network-threat detection
CN105897583B (zh) * 2016-05-31 2019-04-05 迈普通信技术股份有限公司 报文转发方法及装置
CN113518387B (zh) * 2020-04-10 2023-07-21 华为技术有限公司 一种基于网际协议版本IPv6的无线网络通信方法和通信设备
CN112291234B (zh) * 2020-10-28 2023-04-28 杭州迪普科技股份有限公司 流量回注方法、装置、设备及计算机可读存储介质
US20220368640A1 (en) * 2021-05-14 2022-11-17 Arris Enterprises Llc PRESERVING QUALITY OF SERVICE (QoS) MARKINGS FOR DOWNSTREAM FLOWS
CN113472666B (zh) * 2021-06-29 2023-08-18 新华三信息安全技术有限公司 报文转发方法及设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1578296A (zh) * 2003-07-29 2005-02-09 华为技术有限公司 双栈过渡的实现方法
CN1716954A (zh) * 2005-05-27 2006-01-04 清华大学 基于过渡机制的IPv6网和IPv4网间互通的方法
CN1798093A (zh) * 2004-12-29 2006-07-05 中兴通讯股份有限公司 一种穿越IPv6网络地址翻译建立虚拟隧道的方法
EP1722524A1 (de) * 2005-05-11 2006-11-15 Samsung Electronics Co., Ltd. Vorrichtung und Verfahren zur Packetverarbeitung in einem IPv4/IPv6 Kombinationsnetzwerk

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7088726B1 (en) * 1996-07-04 2006-08-08 Hitachi, Ltd. Translator for IP networks, network system using the translator, and IP network coupling method therefor
JP2002204252A (ja) * 2000-12-28 2002-07-19 Oki Electric Ind Co Ltd 重複プライベートアドレス変換システム
US7941512B2 (en) * 2004-12-13 2011-05-10 Cisco Technology, Inc. Use of IPv6 in access networks
KR100912299B1 (ko) * 2007-12-10 2009-08-17 한국전자통신연구원 IPv4 /IPv6 통합망에서의 데이터 포워딩 방법
US8687631B2 (en) 2009-10-16 2014-04-01 Cisco Technology, Inc. System and method for providing a translation mechanism in a network environment

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1578296A (zh) * 2003-07-29 2005-02-09 华为技术有限公司 双栈过渡的实现方法
CN1798093A (zh) * 2004-12-29 2006-07-05 中兴通讯股份有限公司 一种穿越IPv6网络地址翻译建立虚拟隧道的方法
EP1722524A1 (de) * 2005-05-11 2006-11-15 Samsung Electronics Co., Ltd. Vorrichtung und Verfahren zur Packetverarbeitung in einem IPv4/IPv6 Kombinationsnetzwerk
CN1716954A (zh) * 2005-05-27 2006-01-04 清华大学 基于过渡机制的IPv6网和IPv4网间互通的方法

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP2458799A4 *

Also Published As

Publication number Publication date
CN102244688B (zh) 2014-07-16
JP2013517637A (ja) 2013-05-16
CN102244688A (zh) 2011-11-16
EP2458799B1 (de) 2014-07-09
KR20120055647A (ko) 2012-05-31
KR101455219B1 (ko) 2014-12-16
JP5499391B2 (ja) 2014-05-21
EP2458799A1 (de) 2012-05-30
US9100352B2 (en) 2015-08-04
US20130070770A1 (en) 2013-03-21
EP2458799A4 (de) 2012-10-17

Similar Documents

Publication Publication Date Title
WO2011140843A1 (zh) 一种报文转发的方法、装置及系统
CN107995052B (zh) 用于针对有线和无线节点的公共控制协议的方法和设备
JP4527721B2 (ja) トンネリングを用いたリモートlanのコネクティビティを改善するための装置及び方法
US8687631B2 (en) System and method for providing a translation mechanism in a network environment
JP4801153B2 (ja) 通信ネットワーク内のIPv6ステートレスアドレス構成をサポートするアクセス装置、ルーティング装置およびその方法
WO2009021458A1 (fr) Procédé, appareil et système de connexion d'un réseau de couche 2 à un réseau de couche 3
WO2009059523A1 (en) An accessing method, system and equipment of layer-3 session
WO2007109963A1 (fr) Passerelle de réseau privé virtuel et système de réseau ipv6 et système de réalisation de réseau privé virtuel mobile dans un réseau hybride et procédé correspondant
WO2015024168A1 (zh) 一种家庭网关服务功能的实现方法和服务器
WO2011160367A1 (zh) 网络地址转换转发方法及装置
WO2012013133A1 (zh) 一种网络通信的方法和设备
US8724630B2 (en) Method and system for implementing network intercommunication
WO2014114058A1 (zh) 一种数据报文转发方法、用户驻地设备和系统
WO2012106935A1 (zh) 数据通信网络配置方法、网关网元及数据通信系统
WO2014183701A1 (zh) 端口块资源的获取、端口块资源的分配方法及装置
WO2012083657A1 (zh) 报文处理方法、系统和用户前端设备
WO2009143729A1 (zh) 实现dhcp用户业务批发的方法、系统和设备
WO2011032447A1 (zh) 新网与互联网互通的实现方法、系统及通信端
WO2011032450A1 (zh) 网络互通的实现方法和系统
KR101901341B1 (ko) 사용자 장치의 이동성을 지원하는 네트워크 접속 방법 및 장치
US6985935B1 (en) Method and system for providing network access to PPP clients
WO2008028383A1 (fr) Procédé d'identification de protocole de couche 3 dans une interconnexion à supports hétérogènes dans un réseau privé virtuel de protocole l2 et appareil et système correspondants
WO2007093095A1 (fr) Procédé pour mettre en oeuvre l'acheminement de messages mpls et équipement correspondant
WO2011032478A1 (zh) 一种获取终端身份标识的方法、装置及终端
JP2002271417A (ja) トンネリング装置

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11780065

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2011780065

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 476/KOLNP/2012

Country of ref document: IN

ENP Entry into the national phase

Ref document number: 20127006300

Country of ref document: KR

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: 2012530121

Country of ref document: JP

NENP Non-entry into the national phase

Ref country code: DE